logging-log4j-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Gary Gregory (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (LOG4J2-1563) Log4j 2.6.2 can lose exceptions when a security manager is present
Date Wed, 14 Sep 2016 21:08:20 GMT

    [ https://issues.apache.org/jira/browse/LOG4J2-1563?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15491458#comment-15491458

Gary Gregory commented on LOG4J2-1563:

Hi Jason,

We don't bother with attribution at the commit level, we use the changes.xml file for that:

      <action issue="LOG4J2-1563" dev="ggregory" type="fix" due-to="Jason Tedor">
        Fix to prevent Log4j 2.6.2 and higher from losing exceptions when a security manager
is present.

> Log4j 2.6.2 can lose exceptions when a security manager is present
> ------------------------------------------------------------------
>                 Key: LOG4J2-1563
>                 URL: https://issues.apache.org/jira/browse/LOG4J2-1563
>             Project: Log4j 2
>          Issue Type: Bug
>          Components: Core
>    Affects Versions: 2.6.2
>            Reporter: Jason Tedor
>            Assignee: Gary Gregory
>             Fix For: 2.7
>         Attachments: 0001-Unify-handling-of-throwables-when-loading-class.patch, 0002-Remove-policy-in-throwable-proxy-security-test.patch,
> When Log4j is rendering an exception, it can attempt to load classes that it does not
have permissions to load when a security manager is present.
> I have a patch and a failing test case for this; I will submit it shortly.
> This is the backport for LOG4J2-1560.

This message was sent by Atlassian JIRA

To unsubscribe, e-mail: log4j-dev-unsubscribe@logging.apache.org
For additional commands, e-mail: log4j-dev-help@logging.apache.org

View raw message